usermanager.java

一个用jsp写的完整的论坛源代码

			foundErr = true;
		}
		if (!myFace.equals("")
				&& (myFace.endsWith(".gif")||myFace.endsWith(".jpg"))) {
			if (width == 0 || height == 0) {
				errMSG = errMSG + "<br>" + "<li>请输入图片的宽度和高度。";
				foundErr = true;
			} else if (width < 20 || width > 150) {
				errMSG = errMSG + "<br>" + "<li>您输入的图片宽度不符合标准。";
				foundErr = true;
			} else if (height < 20 || height > 250) {
				errMSG = errMSG + "<br>" + "<li>您输入的图片高度不符合标准。";
				foundErr = true;
			} else {
				face = myFace;
			}
		} else if (face.equals("")) {
			errMSG = errMSG + "<br>" + "<li>请选择您的个性头像。";
			foundErr = true;
		} else {
			errMSG = errMSG + "<br>" + "<li>您选择了错误的头像。";
			foundErr = true;
		}
		if (!"".equals(oicq)) {
			try {
				Integer.parseInt(oicq);
			} catch (NumberFormatException e) {
				errMSG = errMSG + "<br>" + "<li>Oicq号码只能是4-10位数字，您可以选择不输入。";
				foundErr = true;
			}
		}
		if (!foundErr) {
			JdbcWrapper jw = new JdbcWrapper();
			try {
				String sql = "select username from " + BBSConst.TABLE_USER
						+ " where username='" + userName
						+ "' and userPassword='" + oldUserPassword + "'";
				if (jw.isExists(sql)) {
					//
					jw
							.prepareStatement("update "
									+ BBSConst.TABLE_USER
									+ " set userPassword=?,userEmail=?,sign=?,oicq=?,sex=?,face=?,width=?,height=?,title=? where userName=?");
					jw.setString(1, userPassword);
					jw.setString(2, userEmail);
					jw.setString(3, sign);
					jw.setString(4, oicq);
					jw.setInt(5, sex);
					jw.setString(6, face);
					jw.setInt(7, width);
					jw.setInt(8, height);
					jw.setString(9, title);
					jw.setString(10, userName);
					jw.executeUpdate();
					//
					CacheManager.getCache(ENV.FORUM_USER).remove(userName);
				} else {
					throw new UserNotFoundException();
				}
				ForumPropertiesManager.resetManager();
			} catch (UserNotFoundException e) {
				log.error("您的用户名或者密码错误", e);
				errMSG = errMSG + "<br>" + "</li>对不起，您的用户名或者密码错误。";
				throw new Exception(errMSG);
			} catch (Exception e) {
				log.error("更新用户信息出错", e);
				throw e;
			} finally {
				jw.close();
			}

		} else {
			throw new Exception(errMSG);
		}
	}

	/**
	 * 删除用户
	 * 
	 * @param request
	 * @throws Exception
	 */
	public static void delUser(HttpServletRequest request) throws Exception {
		String[] userID = request.getParameterValues("userID");
		JdbcWrapper jw = new JdbcWrapper();
		try {
			String sql = "";
			for (int i = 0; i < userID.length; i++) {
				sql = "delete from " + BBSConst.TABLE_USER + " where userID="
						+ userID[i];
				jw.executeUpdate(sql);
			}
		} catch (Exception e) {
			log.error("删除用户出错", e);
			throw new Exception("删除用户出错！");
		} finally {
			jw.close();
		}
	}

	/**
	 * 添加用户
	 * 
	 * @param request
	 * @param wealthReg
	 * @param epReg
	 * @param cpReg
	 * @throws Exception
	 */
	public static void addAdmin(HttpServletRequest request, int wealthReg,
			int epReg, int cpReg) throws Exception {
		String userName = ParamUtil.getString(request, "userName", "");

		String psw = ParamUtil.getString(request, "psw", "");
		String userPassword = "";
		String pswc = ParamUtil.getString(request, "pswc", "");
		String userEmail = ParamUtil.getString(request, "userEmail", "");
		String face = ParamUtil.getString(request, "face", "");
		int width = ParamUtil.getInt(request, "width", 0);
		int height = ParamUtil.getInt(request, "height", 0);
		String oicq = ParamUtil.getString(request, "oicq", "");
		String sign = ParamUtil.getString(request, "sign", "");
		String myFace = ParamUtil.getString(request, "myface", "");
		boolean foundErr = false;
		String errMSG = "";
		int sex = 0;
		int showRe = 0;
		if ("".equals(userName) || userName.length() > 20) {
			errMSG = errMSG + "<br>" + "<li>请输入您的用户名(长度不能大于20)。";
			foundErr = true;
		}
		if (userName.indexOf('=') > -1 || userName.indexOf('%') > -1
				|| userName.indexOf('?') > -1 || userName.indexOf('&') > -1
				|| userName.indexOf(';') > -1 || userName.indexOf(',') > 0
				|| userName.indexOf('\'') > -1 || userName.indexOf('+') > -1) {
			errMSG = errMSG + "<br>" + "<li>用户名中含有非法字符。";
			foundErr = true;
		}
		try {
			sex = ParamUtil.getInt(request, "sex");
		} catch (NumberFormatException e) {
			errMSG = errMSG + "<br>" + "<li>请选择您的性别。";
			foundErr = true;
		}
		try {
			showRe = ParamUtil.getInt(request, "showRe");
		} catch (NumberFormatException e) {
			errMSG = errMSG + "<br>" + "<li>请选择您的帖子有回复时是否要提示您。";
			foundErr = true;
		}
		if ("".equals(psw) || psw.length() > 10) {
			errMSG = errMSG + "<br>" + "<li>请输入您的密码(长度不能大于10)。";
			foundErr = true;
		}
		if (!pswc.equals(psw)) {
			errMSG = errMSG + "<br>" + "<li>您输入的密码和确认密码不一致。";
			foundErr = true;
		} else
			userPassword = psw;

		if (userEmail.indexOf('@') < 0 || userEmail.indexOf('.') < 0) {
			errMSG = errMSG + "<br>" + "<li>您的Email有错误。";
			foundErr = true;
		}
		if (!myFace.equals("")
				&& (myFace.endsWith(".gif")||myFace.endsWith(".jpg"))) {
			if (width == 0 || height == 0) {
				errMSG = errMSG + "<br>" + "<li>请输入图片的宽度和高度。";
				foundErr = true;
			} else if (width < 20 || width > 150) {
				errMSG = errMSG + "<br>" + "<li>您输入的图片宽度不符合标准。";
				foundErr = true;
			} else if (height < 20 || height > 250) {
				errMSG = errMSG + "<br>" + "<li>您输入的图片高度不符合标准。";
				foundErr = true;
			} else {
				face = myFace;
			}
		} else if (face.equals("")) {
			errMSG = errMSG + "<br>" + "<li>请选择您的个性头像。";
			foundErr = true;
		} else {
			errMSG = errMSG + "<br>" + "<li>您选择了错误的头像。";
			foundErr = true;
		}
		if (!"".equals(oicq)) {
			try {
				Integer.parseInt(oicq);
			} catch (NumberFormatException e) {

				errMSG = errMSG + "<br>" + "<li>Oicq号码只能是4-10位数字，您可以选择不输入。";
				foundErr = true;
			}
		}
		if (!foundErr) {
			JdbcWrapper jw = new JdbcWrapper();
			try {
				jw.setAutoClose(false);
				String sql = "select UserPassword from "
						+ BBSConst.TABLE_USER + " where username='" + userName
						+ "'";

				if (jw.isExists(sql)) {
					throw new UserAlreadyExistException();
				}
				jw
						.prepareStatement("insert into "
								+ BBSConst.TABLE_USER
								+ " ( userName,userPassword,userEmail,userClass,sign,oicq,article,lockuser,sex,showRe,addDate,face,width,height,logins,lastlogin,userWealth,userEP,userCP) values( ?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)");
				jw.setString(1, userName);
				jw.setString(2, (userPassword));
				jw.setString(3, userEmail);
				jw.setInt(4, 20);
				jw.setString(5, sign);
				jw.setString(6, oicq);
				jw.setInt(7, 0);
				jw.setInt(8, 0);
				jw.setInt(9, sex);
				jw.setInt(10, showRe);
				jw.setString(11, DateUtil.getLocalDate());
				jw.setString(12, face);
				jw.setInt(13, width);
				jw.setInt(14, height);
				jw.setInt(15, 1);
				jw.setString(16, DateUtil.getLocalDate());
				jw.setInt(17, wealthReg);
				jw.setInt(18, epReg);
				jw.setInt(19, cpReg);
				jw.executeUpdate();
				//
				jw.clearParameters();
				jw.prepareStatement("update " + BBSConst.TABLE_CONFIG
						+ " set usernum=usernum+1,lastUser=?");
				jw.setString(1, userName);
				jw.executeUpdate();
				//
				String forumName = ForumPropertiesManager
						.getString("ForumName");
				String sender = forumName;
				String title = forumName + "欢迎您的到来";
				String body = forumName + ForumPropertiesManager.getString("RegMsg");
				sql = "insert into "
						+ BBSConst.TABLE_MESSAGE
						+ "(incept,sender,title,content,sendtime,flag,issend) values(?,?,?,?,now(),0,1)";
				jw.prepareStatement(sql);
				jw.setString(1, userName);
				jw.setString(2, sender);
				jw.setString(3, title);
				jw.setString(4, body);
				jw.executeUpdate();
				ForumPropertiesManager.resetManager();
			} catch (UserAlreadyExistException e) {
				errMSG = errMSG + "<br>" + "<li>对不起，您输入的用户名已经被注册，请重新输入。";
				throw new Exception(errMSG);
			} catch (Exception e) {
				log.error("添加用户出错", e);
				throw new Exception("添加用户出错。");
			} finally {
				jw.close();
			}
		} else {
			throw new Exception(errMSG);
		}
	}

}